Embodiments of the invention provide for “cloaked” data objects in an electronic content management system. A “cloaked” data object is one that is inaccessible and unreadable by a user, but one which the user is permitted to know exists. The cloaked object may allow the user to know the scope of use of an object, without revealing the substantive content of the data object. A client application may process the cloaked object in a manner that is no different than manner in which the client processes an uncloaked version of the same data object.
Legal claims defining the scope of protection, as filed with the USPTO.
1. A method of providing access to data objects in a database system, comprising: receiving a request to access data objects stored by the database system; generating a set of data objects in response to the request; for each data object in the set of data objects: determining whether a requesting entity has read-access privileges to the data object; and if the requesting entity does not have read-access privileges to the data object, generating and displaying a cloaked version of the data object, wherein the cloaked version of the data object displays a set of child and parent relationships between the cloaked data object and other data objects managed by the database system without exposing a data content of the data object; or if the requesting entity does not have read-access privileges to the data object, providing the client application access to the data object.
2. The method of claim 1 , wherein the requesting entity comprises a software application configured with an integration plug-in allowing the software application to generate the request to access the data objects stored by the database system.
3. The method of claim 2 , wherein the step of generating the set of data objects in response to the request comprises generating data objects in a format used by the software application.
4. The method of claim 1 , wherein the request comprises a query to retrieve the set of data objects, wherein the set of data objects generated in response to the request is consistent with selection conditions specified by the query.
5. The method of claim 1 , wherein the data objects and the set of relationships among the data objects are presented to a user as hierarchical collection of folders containing the data objects, wherein each data object returned to the requesting entity is presented as an element in at least one folder.
6. The method of claim 5 , wherein at least a portion of a path to one of the data objects through the hierarchical collection of folders is cloaked.
7. The method of claim 1 , wherein the step of determining whether the requesting entity has read-access privileges to the data object comprises accessing an access control list that specifies access rights associated with each data object stored by the database system.
8. The method of claim 1 , wherein the database system includes an electronic content management system configured to manage access to the data objects stored by the database system.
9. The method of claim 7 , wherein the electronic content management system includes a director object configured to generate the set of data objects in response to the request by invoking a builder object.
10. A non-transitory computer-readable medium containing a program which when executed by a processor, performs an operation for providing access to data objects in a database system, including the steps of: receiving a request to access data objects stored by the database system; generating a set of data objects in response to the request; for each data object in the set of data objects: determining whether a requesting entity has read-access privileges to the data object; and if the requesting entity does not have read-access privileges to the data object, generating and displaying a cloaked version of the data object, wherein the cloaked version of the data object displays a set of child and parent relationships between the cloaked data object and other data objects managed by the database system without exposing a data content of the data object; or if the requesting entity does not have read-access privileges to the data object, providing the client application access to the data object.
11. The non-transitory computer-readable medium of claim 10 , wherein the requesting entity comprises a software application configured with an integration plug-in allowing the software application to generate the request to access the data objects stored by the database system.
12. The non-transitory computer-readable medium of claim 11 , wherein the step of generating the set of data objects in response to the request comprises generating data objects in a format used by the software application.
13. The non-transitory computer-readable medium of claim 10 , wherein the request comprises a query to retrieve the set of data objects, wherein the set of data objects generated in response to the request is consistent with selection conditions specified by the query.
14. The non-transitory computer-readable medium of claim 10 , wherein the data objects and the set of relationships among the data objects are presented to a user as hierarchical collection of folders containing the data objects, wherein each data object returned to the requesting entity is presented as an element in at least one folder.
15. The non-transitory computer-readable medium of claim 14 , wherein at least a portion of a path to one of the data objects through the hierarchical collection of folders is cloaked.
16. The non-transitory computer-readable medium of claim 10 , wherein the step of determining whether the requesting entity has read-access privileges to the data object comprises accessing an access control list that specifies access rights associated with each data object stored by the database system.
17. The non-transitory computer-readable medium of claim 10 , wherein the database system includes an electronic content management system configured to manage access to the data objects stored by the database system.
18. The non-transitory computer-readable medium of claim 17 , wherein the electronic content management system includes a director object configured to generate the set of data objects in response to the request by invoking a builder object.
19. A system for providing access to data objects in a database system, the system comprising: a memory containing instructions; and a processor configured to execute instructions for performing the steps of: receiving a request to access data objects stored by the database system; generating a set of data objects in response to the request; for each data object in the set of data objects: determining whether a requesting entity has read-access privileges to the data object; and if the requesting entity does not have read-access privileges to the data object, generating and displaying a cloaked version of the data object, wherein the cloaked version of the data object displays a set of child and parent relationships between the cloaked data object and other data objects managed by the database system without exposing a data content of the data object; or if the requesting entity does not have read-access privileges to the data object, providing the client application access to the data object.
20. The system of claim 19 , wherein the requesting entity comprises a software application configured with an integration plug-in allowing the software application to generate the request to access the data objects stored by the database system.
21. The system of claim 19 , wherein the data objects and the set of relationships among the data objects are presented to a user as hierarchical collection of folders containing the data objects, wherein each data object returned to the requesting entity is presented as an element in at least one folder.
22. The system of claim 21 , wherein at least a portion of a path to one of the data objects through the hierarchical collection of folders is cloaked.
23. The system of claim 19 , wherein the database system includes an electronic content management system configured to manage access to the data objects stored by the database system.
24. The system of claim 23 , wherein the electronic content management system includes a director object configured to generate the set of data objects in response to the request by invoking a builder object.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
January 23, 2006
March 15, 2011
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.